Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
202491 7.8 重要
Local
PoDoFo project - PoDoFo の PdfTokenizer.cpp の PoDoFo::PdfTokenizer::GetNextToken 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2017-5886 2017-03-17 16:57 2017-02-3 Show GitHub Exploit DB Packet Storm
202492 5.5 警告
Local
PoDoFo project - PoDoFo の PdfParser.cpp の PoDoFo::PdfParser::ReadXRefSubsection 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス
CVE-2017-5855 2017-03-17 16:57 2017-02-1 Show GitHub Exploit DB Packet Storm
202493 5.5 警告
Local
PoDoFo project - PoDoFo の base/PdfOutputStream.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス
CVE-2017-5854 2017-03-17 16:57 2017-02-1 Show GitHub Exploit DB Packet Storm
202494 7.8 重要
Local
PoDoFo project - PoDoFo の base/PdfParser.cpp における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド
CVE-2017-5853 2017-03-17 16:57 2017-02-1 Show GitHub Exploit DB Packet Storm
202495 5.5 警告
Local
PoDoFo project - PoDoFo の base/PdfVariant.cpp の PoDoFo::PdfPage::GetInheritedKeyFromObject 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2017-5852 2017-03-17 16:57 2017-02-1 Show GitHub Exploit DB Packet Storm
202496 5.9 警告
Local
Grails project - Grails Pdf Plugin における XML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限
CVE-2017-6344 2017-03-17 16:51 2017-02-21 Show GitHub Exploit DB Packet Storm
202497 7.8 重要
Local
Iceni Technology - Iceni Argus におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2016-8387 2017-03-17 16:47 2016-10-10 Show GitHub Exploit DB Packet Storm
202498 7.8 重要
Local
Iceni Technology - Iceni Argus におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2016-8386 2017-03-17 16:47 2016-10-10 Show GitHub Exploit DB Packet Storm
202499 7.4 重要
Network
フォーティネット - Fortinet FortiManager における認証情報の検証不備の脆弱性 CWE-200
情報漏えい
CVE-2016-8495 2017-03-17 16:39 2016-10-7 Show GitHub Exploit DB Packet Storm
202500 5.9 警告
Network
フォーティネット - Fortinet FortiGate の ANSI X9.31 RNG の実装における不正な読み取りアクセス権を取得される脆弱性 CWE-200
情報漏えい
CVE-2016-8492 2017-03-17 16:39 2016-11-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289141 - google chrome The SimplifiedLowering::DoLoadBuffer function in compiler/simplified-lowering.cc in Google V8, as used in Google Chrome before 40.0.2214.91, does not properly choose an integer data type, which allow… CWE-189
Numeric Errors
CVE-2014-7927 2024-11-21 11:18 2015-01-23 Show GitHub Exploit DB Packet Storm
289142 - google chrome Use-after-free vulnerability in the WebAudio implementation in Blink, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service or possibly have unspecified o… NVD-CWE-Other
CVE-2014-7925 2024-11-21 11:18 2015-01-23 Show GitHub Exploit DB Packet Storm
289143 - redhat
opensuse
google
oracle
icu-project
canonical
enterprise_linux_desktop_supplementary
enterprise_linux_server_supplementary
enterprise_linux_workstation_supplementary
enterprise_linux_server_supplementary_eus
opensuse
chrome
com…
The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of… CWE-17
Code
CVE-2014-7926 2024-11-21 11:18 2015-01-23 Show GitHub Exploit DB Packet Storm
289144 - google chrome Use-after-free vulnerability in the IndexedDB implementation in Google Chrome before 40.0.2214.91 allows remote attackers to cause a denial of service or possibly have unspecified other impact by tri… NVD-CWE-Other
CVE-2014-7924 2024-11-21 11:18 2015-01-23 Show GitHub Exploit DB Packet Storm
289145 - redhat
opensuse
icu-project
oracle
canonical
google
enterprise_linux_desktop_supplementary
enterprise_linux_server_supplementary
enterprise_linux_workstation_supplementary
enterprise_linux_server_supplementary_eus
opensuse
international…
The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of… CWE-17
Code
CVE-2014-7923 2024-11-21 11:18 2015-01-23 Show GitHub Exploit DB Packet Storm
289146 - cisco unified_communications_manager Absolute path traversal vulnerability in the Real-Time Monitoring Tool (RTMT) API in Cisco Unified Communications Manager (CUCM) allows remote authenticated users to read arbitrary files via a full p… CWE-200
Information Exposure
CVE-2014-8008 2024-11-21 11:18 2015-01-22 Show GitHub Exploit DB Packet Storm
289147 - apache santuario_xml_security_for_java Apache Santuario XML Security for Java 2.0.x before 2.0.3 allows remote attackers to bypass the streaming XML signature protection mechanism via a crafted XML document. CWE-254
 7PK - Security Features
CVE-2014-8152 2024-11-21 11:18 2015-01-22 Show GitHub Exploit DB Packet Storm
289148 - samba samba Samba 4.0.x before 4.0.24, 4.1.x before 4.1.16, and 4.2.x before 4.2rc4, when an Active Directory Domain Controller (AD DC) is configured, allows remote authenticated users to set the LDB userAccount… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-8143 2024-11-21 11:18 2015-01-17 Show GitHub Exploit DB Packet Storm
289149 - redhat cloudforms_3.1_management_engine SQL injection vulnerability in Red Hat CloudForms 3.1 Management Engine (CFME) 5.3 allows remote authenticated users to execute arbitrary SQL commands via a crafted REST API request to an SQL filter. CWE-89
SQL Injection
CVE-2014-7814 2024-11-21 11:18 2015-01-17 Show GitHub Exploit DB Packet Storm
289150 - cisco webex_meetings_server Cisco WebEx Meetings Server 1.5 presents the same CAPTCHA challenge for each login attempt, which makes it easier for remote attackers to obtain access via a brute-force approach of guessing username… CWE-255
Credentials Management
CVE-2014-8034 2024-11-21 11:18 2015-01-16 Show GitHub Exploit DB Packet Storm